Joseph Silber

Bouncer loads all of the user's abilities, and caches them (either for the current request, or for all subsequent requests). This is useful for pages that do multiple checks on...

To help you see this for yourself, I created [a demo repo](https://github.com/JosephSilber/bouncer-demo-issue-430) with the most minimalist setup. Look at [the atomic commits](https://github.com/JosephSilber/bouncer-demo-issue-430/commits/master), and check out [the readme](https://github.com/JosephSilber/bouncer-demo-issue-430/blob/master/README.md) on how to...

This feels like a _really_ marginal benefit. Every feature added to Bouncer has to justify its cost of introduction and maintenance. I'm not convinced that this feature request meets that...

That's how it's designed to work. Why does that bother you?

> is this repo still active Yes. I work on open source in my free time. Unless there are truly show-stopping bugs, I don't generally review issues/PRs every day. I...

Adding a suffix is easy. But how would you then serve different static files (based on the region) directly from nginx?

If making changes to the HTML (or the data that drives it) immediately shows up on the page, then it's not serving the cached version.

I unfortunately don't have the bandwidth to help debug your code. Make sure you've set up [the URL rewriting](https://github.com/JosephSilber/page-cache#url-rewriting) properly for your Apache/nginx setup 👍

Why do you think getting via AJAX would be a security risk?

Browsers don't allow cross-site AJAX requests (unless specifically allowed via CORS headers). Think about it: if this would be a concern, putting the CSRF token in the HTML would be...